Linux Kernel 2.4/2.6 Sigqueue Blocking Denial of Service Vulnerability
|| CVE: N/A
|Author: Nikita V. Youshchenko
||Vulnerable App: N/A
A vulnerability has been reported in the Linux Kernel that may permit a malicious local user to affect a system-wide denial of service condition. This issue may be triggered via the Kernel signal queue (struct sigqueue) and may be exploited to exhaust the system process table by causing an excessive number of threads to be left in a zombie state.
sigprocmask(SIG_BLOCK, &set, 0);
pid = getpid();
for (i = 0; i < 1024; i++)